Dobry den,
kdykoliv se ukonci fullscreen tak se spusti pruzkumni. Jak na hrach, tak i youtube a i mozilla prez F11.
Dekuju za kontrolu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-07-2023 01
Ran by gagne (administrator) on DESKTOP-UBE4TC9 (25-07-2023 21:02:42)
Running from C:\Users\gagne\Desktop\FRST64.exe
Loaded Profiles: gagne
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\Firefox Developer Edition\firefox.exe" -osint -url "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe ->) (Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\QmlRenderer.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NZXT CAM\NZXT CAM.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\cam_helper.exe <3>
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(D:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(Discord Inc. -> Discord Inc.) C:\Users\gagne\AppData\Local\Discord\app-1.0.9015\Discord.exe <6>
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) D:\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (NZXT, Inc. -> NZXT, Inc.) C:\Program Files\NZXT CAM\NZXT CAM.exe <5>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [162115008 2023-07-05] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-07-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37050832 2023-07-25] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe [520000 2023-07-09] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4371816 2023-07-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [AMDNoiseSuppression] => "C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Discord] => C:\Users\gagne\AppData\Local\Discord\Update.exe [1525016 2023-02-13] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {4625B157-8C0F-44FD-A30E-685CB0282BC3} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8EC2EFBD-1EAB-4075-B1CF-4461E6652F9A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {1DC036C8-7173-451B-AB04-DEFBAB365BE8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
Task: {EB530F2F-D429-4C75-AB24-616F273BA2D3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-13] (Avast Software s.r.o. -> Avast Software)
Task: {817EF998-4535-4921-97DC-55608BD256BC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FB9CEC40-2086-431D-9511-D96DA86302C5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0d0485cf-cbed-42f1-b993-f3e9878c0cc7" --version "6.14.10584" --silent
Task: {64215221-0A89-4CF2-955D-F0BFA8968C2F} - System32\Tasks\CCleanerSkipUAC - gagne => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E3FD7DFE-6AC9-48DD-BDB2-8E8FA15C25F8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5308592 2023-07-16] (Microsoft Windows -> Microsoft Corporation)
Task: {5D28E0CD-85E6-48FB-8A7B-D90F1A2B914D} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D9A5C3FF-D4E6-423E-BDD9-972197B094DB} - System32\Tasks\Mozilla\Firefox Developer Edition Background Update CA9422711AE1A81C => C:\Program Files\Firefox Developer Edition\firefox.exe [704928 2023-07-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\CA9422711AE1A81C\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {BD0CB606-274B-46E1-B750-908C53098C6A} - System32\Tasks\Mozilla\Firefox Developer Edition Default Browser Agent CA9422711AE1A81C => C:\Program Files\Firefox Developer Edition\default-browser-agent.exe [733088 2023-07-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {0DEA5F2F-D73F-4813-9415-DE6D3364D1E8} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56760 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {82C1AA6E-84A4-4F8A-85CC-EC3EC7E23380} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{276f1795-e4a3-4eee-90b9-c5e05325830f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3654d435-6864-4a67-9ad2-4e818661a19a}: [DhcpNameServer] 192.168.39.115
Edge:
=======
Edge Profile: C:\Users\gagne\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-25]
FireFox:
========
FF DefaultProfile: l52zdr55.default
FF ProfilePath: C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\l52zdr55.default [2022-06-20]
FF ProfilePath: C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default [2023-07-25]
FF DownloadDir: D:\Download
FF Extension: (AdBlocker Ultimate) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (Popup View for Google™ Translate) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\jid0-fbHwsGfb6kJyq2hj65KnbGte3yT@jetpack.xpi [2023-01-07]
FF Extension: (Avast Passwords) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2022-06-02] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Download Manager (S3)) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\s3download@statusbar.xpi [2022-06-02]
FF Extension: (Flagfox) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2023-07-10]
FF Extension: (Nightly and Aurora) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{596ea437-a17b-4b82-a56c-23a33177512e}.xpi [2022-06-02]
FF Extension: (WX Download Status Bar) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{a1c84bb7-d5fc-4906-90b4-965e520b29bf}.xpi [2022-06-02]
StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-06-24] (BattlEye Innovations e.K. -> )
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\service.exe [648128 2023-07-05] (NZXT, Inc. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136040 2023-02-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10589952 2023-07-01] (Logitech Inc -> Logitech, Inc.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [142856 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-10-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31368 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [237424 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [392832 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297832 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95960 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39600 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [272016 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [556576 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [105248 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80416 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [943456 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [704264 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [212632 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319512 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-07-18] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43568 2023-07-18] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [52568 2023-07-01] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-26] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-26] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-26] (Logitech Inc -> Logitech)
S3 tmhidusb; C:\Windows\system32\DRIVERS\tmhidusb.sys [432136 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmResetMin; C:\Windows\System32\Drivers\tmResetMin.sys [47648 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2021. All rights reserved.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz152; \??\C:\Windows\temp\cpuz152\cpuz152_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-25 21:02 - 2023-07-25 21:03 - 000023014 _____ C:\Users\gagne\Desktop\FRST.txt
2023-07-25 21:02 - 2023-07-25 21:01 - 002383872 _____ (Farbar) C:\Users\gagne\Desktop\FRST64.exe
2023-07-25 20:20 - 2023-07-25 21:00 - 000003048 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-07-25 20:20 - 2023-07-25 21:00 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-07-25 20:20 - 2023-07-25 21:00 - 000002254 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - gagne
2023-07-25 20:20 - 2023-07-25 21:00 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-07-25 20:20 - 2023-07-25 20:59 - 000000000 ____D C:\Program Files\CCleaner
2023-07-25 20:20 - 2023-07-25 20:20 - 000000868 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-07-23 16:12 - 2023-07-23 16:12 - 000000000 ____D C:\Users\gagne\AppData\Local\fontconfig
2023-07-23 16:11 - 2023-07-25 21:00 - 000002590 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-07-23 16:11 - 2023-07-23 16:11 - 000000815 _____ C:\Users\gagne\Desktop\Format Factory.lnk
2023-07-23 16:11 - 2023-07-23 16:11 - 000000000 ____D C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2023-07-23 16:06 - 2023-07-23 16:09 - 000000000 ____D C:\aaa
2023-07-16 19:00 - 2023-07-16 19:00 - 000000000 ___HD C:\$WinREAgent
2023-07-11 16:23 - 2023-07-11 16:23 - 000000000 ____D C:\Users\gagne\AppData\Roaming\EasyAntiCheat
2023-07-11 16:22 - 2023-07-11 16:23 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-07-09 21:07 - 2023-07-09 21:07 - 000313240 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2023-07-01 20:06 - 2023-07-01 20:06 - 002081904 _____ (Logitech) C:\Windows\system32\logi_audio_hx2e_render_apo.dll
2023-07-01 20:06 - 2023-07-01 20:06 - 001893912 _____ (Logitech) C:\Windows\system32\logi_audio_headset_capture_apo.dll
2023-07-01 20:06 - 2023-07-01 20:06 - 000052568 _____ (Logitech) C:\Windows\system32\Drivers\logi_audio_surround.sys
2023-07-01 20:06 - 2023-07-01 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-07-01 20:06 - 2023-07-01 20:06 - 000000000 ____D C:\Program Files\LGHUB
2023-06-30 21:17 - 2023-06-30 21:19 - 000000000 ____D C:\Users\gagne\Documents\Arma 3
2023-06-30 21:17 - 2023-06-30 21:19 - 000000000 ____D C:\Users\gagne\AppData\Local\Arma 3
2023-06-30 21:17 - 2023-06-30 21:17 - 000000000 ____D C:\Users\gagne\AppData\Local\BattlEye
2023-06-30 21:17 - 2023-06-30 21:17 - 000000000 ____D C:\ProgramData\Bohemia Interactive
2023-06-30 21:16 - 2023-06-30 21:38 - 000000000 ____D C:\Users\gagne\AppData\Local\Arma 3 Launcher
2023-06-30 21:16 - 2023-06-30 21:16 - 000000000 ____D C:\Users\gagne\AppData\Local\Bohemia_Interactive
2023-06-26 19:32 - 2023-06-26 19:32 - 000000000 ____D C:\Users\gagne\AppData\Local\DBG
2023-06-26 19:32 - 2023-06-26 19:32 - 000000000 ____D C:\Users\gagne\AppData\Local\CrashReportClient
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-25 21:03 - 2022-06-20 17:32 - 000000000 ____D C:\FRST
2023-07-25 21:01 - 2022-05-31 19:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-25 21:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-25 21:00 - 2022-11-22 21:17 - 000002672 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2023-07-25 21:00 - 2022-11-22 21:17 - 000002518 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2023-07-25 21:00 - 2022-11-22 21:17 - 000002510 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2023-07-25 21:00 - 2022-11-22 21:17 - 000002194 _____ C:\Windows\system32\Tasks\StartCN
2023-07-25 21:00 - 2022-11-22 21:17 - 000002114 _____ C:\Windows\system32\Tasks\StartDVR
2023-07-25 21:00 - 2022-06-02 15:41 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2023-07-25 21:00 - 2022-05-31 19:46 - 000003066 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3082329309-1617206090-3278802057-1001
2023-07-25 21:00 - 2022-05-31 19:45 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3082329309-1617206090-3278802057-1001
2023-07-25 21:00 - 2022-05-31 19:28 - 000003568 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-25 21:00 - 2022-05-31 19:28 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-25 20:22 - 2022-06-02 15:47 - 000000000 ____D C:\Users\gagne\AppData\Local\CrashDumps
2023-07-25 20:22 - 2022-05-31 20:18 - 000000000 ____D C:\Windows\Panther
2023-07-25 20:17 - 2022-06-02 16:09 - 000000000 ____D C:\Users\gagne\AppData\Local\AMD_Common
2023-07-25 20:14 - 2023-02-18 15:16 - 000000000 ____D C:\Users\gagne\AppData\Local\Discord
2023-07-25 18:33 - 2022-06-02 17:42 - 000000000 ____D C:\Users\gagne\AppData\Roaming\discord
2023-07-25 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-25 18:14 - 2022-06-02 17:54 - 000000000 ____D C:\Users\gagne\AppData\Local\Ubisoft Game Launcher
2023-07-25 18:14 - 2022-06-02 17:00 - 000000000 ____D C:\Users\gagne\AppData\Roaming\LGHUB
2023-07-25 18:14 - 2022-06-02 17:00 - 000000000 ____D C:\Users\gagne\AppData\Local\LGHUB
2023-07-25 18:14 - 2022-06-02 16:15 - 000000000 ____D C:\Users\gagne\AppData\Roaming\NZXT CAM
2023-07-24 19:10 - 2022-06-02 15:42 - 000000000 ____D C:\Users\gagne\AppData\Local\Avast Software
2023-07-24 18:26 - 2022-05-31 19:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-24 17:56 - 2022-05-31 19:43 - 000000000 ____D C:\Users\gagne\AppData\Local\D3DSCache
2023-07-24 17:55 - 2022-06-02 15:38 - 000000000 ____D C:\Program Files\Firefox Developer Edition
2023-07-24 17:55 - 2022-05-31 19:50 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk
2023-07-23 16:44 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-23 16:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-23 16:11 - 2022-07-31 19:13 - 000000000 ____D C:\Users\gagne\AppData\Local\luminati
2023-07-23 13:34 - 2022-05-31 19:41 - 000002386 _____ C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-23 13:32 - 2022-05-31 19:28 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-18 17:28 - 2022-05-31 19:35 - 001693136 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-18 17:28 - 2019-12-07 16:41 - 000716764 _____ C:\Windows\system32\perfh005.dat
2023-07-18 17:28 - 2019-12-07 16:41 - 000144942 _____ C:\Windows\system32\perfc005.dat
2023-07-18 17:28 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-07-18 17:27 - 2022-05-31 19:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-18 17:21 - 2022-06-02 15:39 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-18 17:21 - 2022-05-31 19:28 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-18 17:21 - 2022-05-31 19:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-17 21:42 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-07-17 19:59 - 2022-06-02 15:41 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2023-07-16 20:54 - 2022-05-31 19:28 - 000269344 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-16 19:13 - 2022-05-31 19:31 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-16 18:58 - 2022-06-11 17:07 - 000000000 ____D C:\Windows\system32\MRT
2023-07-13 21:32 - 2022-06-11 17:07 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-11 20:48 - 2022-06-12 10:56 - 000000000 ____D C:\Users\gagne\Documents\Euro Truck Simulator 2
2023-07-09 21:07 - 2022-06-02 15:40 - 000943456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000704264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000556576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000392832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000319512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000297832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000272016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000237424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000105248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000095960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000080416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000039600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000031368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2023-07-09 21:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-07-09 21:05 - 2022-06-02 16:15 - 000000000 ____D C:\Program Files\NZXT CAM
2023-07-01 09:39 - 2022-09-28 13:09 - 000000000 ____D C:\Users\gagne\AppData\Local\BeamNG.drive
2023-06-30 21:15 - 2022-06-02 16:05 - 000000000 ____D C:\ProgramData\Package Cache
2023-06-30 21:15 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-07-2023 01
Ran by gagne (25-07-2023 21:04:09)
Running from C:\Users\gagne\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) (2022-05-31 17:31:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3082329309-1617206090-3278802057-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3082329309-1617206090-3278802057-503 - Limited - Disabled)
gagne (S-1-5-21-3082329309-1617206090-3278802057-1001 - Administrator - Enabled) => C:\Users\gagne
Guest (S-1-5-21-3082329309-1617206090-3278802057-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3082329309-1617206090-3278802057-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.11.1 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
Branding64 (HKLM\...\{0DB6E0DC-607A-42C1-A3CE-7567A9F85AF4}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.63.1071 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform)
CORSAIR iCUE 4 Software (HKLM\...\{444A58EF-FD29-4558-BD8B-F4839576463C}) (Version: 4.33.138 - Corsair)
C-TECH AKANTHA ULTIMATE GAMING SOFTWARE 1.2 (HKLM-x32\...\C-TECH AKANTHA ULTIMATE GAMING SOFTWARE) (Version: 1.2 - C-TECH)
C-TECH Echion Keyboard Driver v1.6.6 (HKLM-x32\...\{53162F95-A943-4865-9A58-1959B37F17FC}_is1) (Version: - C-TECH)
Dex (HKLM-x32\...\1929434313_is1) (Version: 6.0.0.0 - GOG.com)
Discord (HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 4.TTRS.2021 - Thrustmaster)
Firefox Developer Edition (x64 cs) (HKLM\...\Firefox Developer Edition 116.0 (x64 cs)) (Version: 116.0 - Mozilla)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.5.418755 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\OneDriveSetup.exe) (Version: 23.137.0702.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 102.0 - Mozilla)
NZXT CAM 4.52.2 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.52.2 - NZXT, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.50 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 132.0.10676 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C270D21B-2327-49B8-85F7-395133A93C75}) (Version: 8.92.0.0 - Microsoft Corporation)
Vojenský újezd Ralsko - Číhající Sovět (HKLM-x32\...\{Vojensky ujezd Ralsko - cihajici sovet}_is1) (Version: - Špidla Data Processing, s.r.o.)
Watch Dogs Legion (HKLM-x32\...\Uplay Install 3353) (Version: - Ubisoft)
Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.23.10015.0_x64__0a9344xs7nr4m [2023-07-11] (Advanced Micro Devices Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.2.0_x64__6rarf9sa4v8jt [2023-07-20] (Disney)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2023-01-24] (Netflix, Inc.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-05-18] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3082329309-1617206090-3278802057-1001_Classes\CLSID\{C07FF71D-2B2E-424A-8097-56797DFE0911}\InprocServer32 -> C:\Program Files\Firefox Developer Edition\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [2231296 2013-04-05] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-05] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition Private Browsing.lnk -> C:\Program Files\Firefox Developer Edition\private_browsing.exe (Mozilla Corporation)
Shortcut: C:\Users\gagne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Firefox Developer.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2023-07-09 21:05 - 2023-07-05 18:34 - 001569280 _____ () [File not signed] \\?\C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\CTITSDKDeviceTool.dll
2023-02-02 13:07 - 2023-05-29 14:29 - 004519936 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\vk_swiftshader.dll
2023-07-01 20:06 - 2023-07-01 18:48 - 000164864 _____ () [File not signed] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2023-07-09 21:05 - 2023-07-05 18:34 - 002882560 _____ () [File not signed] C:\Program Files\NZXT CAM\ffmpeg.dll
2023-07-09 21:05 - 2023-07-05 18:34 - 000480768 _____ () [File not signed] C:\Program Files\NZXT CAM\libegl.dll
2023-07-09 21:05 - 2023-07-05 18:34 - 007625728 _____ () [File not signed] C:\Program Files\NZXT CAM\libglesv2.dll
2022-07-19 15:34 - 2023-07-05 18:34 - 005334528 _____ () [File not signed] C:\Program Files\NZXT CAM\vk_swiftshader.dll
2023-07-09 21:05 - 2023-07-05 18:34 - 000083456 _____ (Silicon Laboratories, Inc.) [File not signed] \\?\C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\nzxt-device\SiUSBXp64.dll
2023-01-17 13:13 - 2023-01-17 13:13 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8863C9D1-0151-4FDE-BD0A-A6A72AEC64F3}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC64AB36-248C-4314-B0D5-2CAC7A709798}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F17FBCDE-27E6-4F36-9704-51FBD8DBCB06}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E034FF70-CAF1-4625-BDB5-65F1019F408B}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{BFDB94EB-B160-46C3-91E8-3C6199A7F04A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{0D4DFE67-3144-4AA2-9F7C-7BF9929075BE}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{9DC65D9F-6AC7-4369-8E35-27C623F40112}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5C0A2AF5-AA6D-4D53-974F-6657F7F01D06}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{C2F51D2D-AB24-4EE5-96DE-35A8131A2B47}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F7286CA6-4DF9-46DD-A8D4-A15FB9B7FC64}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4F486775-BFC2-48E1-ADF6-095A2976C6D9}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B1818985-F1EA-4627-A75D-905D2095664F}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E04790C-3B46-4717-B332-F79B34735E5B}] => (Allow) D:\Games\Tom Clancy's The Division 2\TheDivision2.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{CC9EF5A4-4F96-4521-B048-75C299AF23C0}D:\games\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\games\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [UDP Query User{5961DFAE-D83F-401B-A744-C2C7C42A0D87}D:\games\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\games\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [{03064010-8275-464E-AF42-ECACD4908E4A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{587E53B9-2E54-48EF-9899-EFAFA2B1CBB3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{056FFE47-D77D-4A7F-90BE-A581967391AE}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{05B27EFB-C77B-4300-85E5-FC682DC02496}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{88681583-831A-414E-B095-E0716BFA940F}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B547D1F7-61CE-4B14-ACE9-12500C78CCB1}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{CF36ADCA-8C83-4CB3-BD4E-7D257773ECB3}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{154E1218-163D-4279-AD50-5654892F96BF}] => (Allow) D:\Games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{E8AD08E9-A814-49DE-9E12-22CFD6E1D3C5}] => (Allow) D:\Games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{2CDD9E2E-F40E-4454-BF8E-1205994305F9}] => (Allow) D:\Games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{8ACEA2D3-569F-4F93-A075-97CC7A765C04}] => (Allow) D:\Games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{4984FFE9-E7FE-4AA8-A9F4-03F75D76AC50}] => (Allow) D:\Games\Tom Clancy's Ghost Recon Wildlands\GRW_Upp.exe (Blue Byte GmbH -> )
FirewallRules: [TCP Query User{C88433C9-CC91-4A54-8E28-72C643BC1AE3}D:\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\games\tom clancy's ghost recon wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [UDP Query User{FF78796E-99E5-4FEB-85E0-4C2D88C20C8D}D:\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\games\tom clancy's ghost recon wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [{EF7C3361-72D9-484B-8733-D3E03BA8C5FD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{CC2B1F72-DC93-4607-BD0C-4D3DA1C2D59D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9EEDB6FF-EE2F-41F4-ACD9-76778259DD63}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0F87DD28-DE15-4D99-9FA6-8D0718B6139B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9B979DB8-C5FA-4F3B-B37A-9A6587C26D96}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{BB5B9461-F3CC-4CBA-B458-F219C9D88FC9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{C5D39622-53CA-4CD4-8045-A87D444318B1}] => (Allow) D:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{21FB6EFF-4E9E-4B37-A1B5-0FEB8CA5FE77}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{83258977-8954-470A-ADA5-B3181F657371}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.183\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
30-06-2023 15:05:56 Naplánovaný kontrolní bod
10-07-2023 20:04:04 Instalační služba modulů systému Windows
16-07-2023 18:58:45 Instalační služba modulů systému Windows
16-07-2023 19:00:05 Instalační služba modulů systému Windows
16-07-2023 19:01:12 Instalační služba modulů systému Windows
17-07-2023 20:04:21 Instalační služba modulů systému Windows
17-07-2023 20:05:05 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/25/2023 08:29:46 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/24/2023 08:29:47 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/24/2023 05:56:59 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/23/2023 04:46:01 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (07/23/2023 01:33:39 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/20/2023 04:43:20 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/17/2023 08:29:48 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/16/2023 08:29:47 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
System errors:
=============
Error: (07/25/2023 08:59:46 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-UBE4TC9)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (07/25/2023 08:22:55 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-UBE4TC9)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (07/24/2023 07:12:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Uživatelská služba nabízených oznámení Windows_60d1c97 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (07/20/2023 08:18:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server {283EDD52-69B2-473D-BEB6-2C0B4C01FD73} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/20/2023 08:18:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server {283EDD52-69B2-473D-BEB6-2C0B4C01FD73} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/20/2023 08:18:06 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server {283EDD52-69B2-473D-BEB6-2C0B4C01FD73} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/20/2023 08:18:06 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!Windows.Networking.BackgroundTransfer.Internal.BackgroundTransferTask.ClassId.1 se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/20/2023 08:18:06 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!Windows.Networking.BackgroundTransfer.Internal.BackgroundTransferTask.ClassId.1 se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===============
Date: 2023-07-25 19:47:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0701 05/16/2016
Motherboard: ASUSTeK COMPUTER INC. 970 PRO GAMING/AURA
Processor: AMD FX(tm)-8350 Eight-Core Processor
Percentage of memory in use: 37%
Total physical RAM: 16280.84 MB
Available physical RAM: 10105.79 MB
Total Virtual: 28056.84 MB
Available Virtual: 16295.94 MB
==================== Drives ================================
Drive c: (WIN10) (Fixed) (Total:222.96 GB) (Free:126.12 GB) (Model: SanDisk SDSSDA240G) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:438.98 GB) (Model: WDC WD10EZEX-08WN4A0) NTFS
\\?\Volume{418e9b3a-17e0-4cd2-b95b-28d9bfd09665}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{bddb1690-dbed-42b0-b569-4f6a03c59a8e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 61C67A30)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1805298C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Ukonceni fullscreenu spusti pruzkumnika
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Ukonceni fullscreenu spusti pruzkumnika
Zdravím!
Spsusťte tuto utilitu:
Spsusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Ukonceni fullscreenu spusti pruzkumnika
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-26-2023
# Duration: 00:00:01
# OS: Windows 10 (Build 19045.3208)
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\gagne\AppData\Roaming\quickclick
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Conduit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPTouchSmart File C:\Users\gagne\Desktop\Netflix.lnk
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1423 octets] - [20/06/2022 18:27:18]
AdwCleaner[C00].txt - [1593 octets] - [20/06/2022 18:27:53]
AdwCleaner[S01].txt - [1528 octets] - [20/06/2022 18:29:15]
AdwCleaner[S02].txt - [1705 octets] - [26/07/2023 20:42:10]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-26-2023
# Duration: 00:00:01
# OS: Windows 10 (Build 19045.3208)
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\gagne\AppData\Roaming\quickclick
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Conduit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPTouchSmart File C:\Users\gagne\Desktop\Netflix.lnk
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1423 octets] - [20/06/2022 18:27:18]
AdwCleaner[C00].txt - [1593 octets] - [20/06/2022 18:27:53]
AdwCleaner[S01].txt - [1528 octets] - [20/06/2022 18:29:15]
AdwCleaner[S02].txt - [1705 octets] - [26/07/2023 20:42:10]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Ukonceni fullscreenu spusti pruzkumnika
OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Ukonceni fullscreenu spusti pruzkumnika
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2023
Ran by gagne (administrator) on DESKTOP-UBE4TC9 (27-07-2023 16:06:15)
Running from C:\Users\gagne\Desktop\FRST64.exe
Loaded Profiles: gagne
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\Firefox Developer Edition\firefox.exe" -osint -url "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <6>
(C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe ->) (Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\QmlRenderer.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NZXT CAM\NZXT CAM.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\cam_helper.exe <4>
(C:\Program Files\NZXT CAM\NZXT CAM.exe ->) (Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(D:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(Discord Inc. -> Discord Inc.) C:\Users\gagne\AppData\Local\Discord\app-1.0.9015\Discord.exe <6>
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (NZXT, Inc. -> NZXT, Inc.) C:\Program Files\NZXT CAM\NZXT CAM.exe <5>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\gagne\AppData\Local\Microsoft\OneDrive\23.137.0702.0001\Microsoft.SharePoint.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3205_none_7e1f4da67c811930\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [162104256 2023-07-26] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-07-26] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37050832 2023-07-25] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe [520000 2023-07-09] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4371816 2023-07-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [AMDNoiseSuppression] => "C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Discord] => C:\Users\gagne\AppData\Local\Discord\Update.exe [1525016 2023-02-13] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D2B4700D-E6EE-4B4F-BC2B-F97FCEAEAB60} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CFEEF753-09EB-4192-AA25-69E2B631D501} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {1DC036C8-7173-451B-AB04-DEFBAB365BE8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
Task: {EB530F2F-D429-4C75-AB24-616F273BA2D3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-13] (Avast Software s.r.o. -> Avast Software)
Task: {817EF998-4535-4921-97DC-55608BD256BC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FB9CEC40-2086-431D-9511-D96DA86302C5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0d0485cf-cbed-42f1-b993-f3e9878c0cc7" --version "6.14.10584" --silent
Task: {64215221-0A89-4CF2-955D-F0BFA8968C2F} - System32\Tasks\CCleanerSkipUAC - gagne => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E3FD7DFE-6AC9-48DD-BDB2-8E8FA15C25F8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5308592 2023-07-16] (Microsoft Windows -> Microsoft Corporation)
Task: {5D28E0CD-85E6-48FB-8A7B-D90F1A2B914D} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D9A5C3FF-D4E6-423E-BDD9-972197B094DB} - System32\Tasks\Mozilla\Firefox Developer Edition Background Update CA9422711AE1A81C => C:\Program Files\Firefox Developer Edition\firefox.exe [704928 2023-07-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\CA9422711AE1A81C\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {BD0CB606-274B-46E1-B750-908C53098C6A} - System32\Tasks\Mozilla\Firefox Developer Edition Default Browser Agent CA9422711AE1A81C => C:\Program Files\Firefox Developer Edition\default-browser-agent.exe [733088 2023-07-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {0DEA5F2F-D73F-4813-9415-DE6D3364D1E8} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56760 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {82C1AA6E-84A4-4F8A-85CC-EC3EC7E23380} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{276f1795-e4a3-4eee-90b9-c5e05325830f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3654d435-6864-4a67-9ad2-4e818661a19a}: [DhcpNameServer] 192.168.39.115
Edge:
=======
Edge Profile: C:\Users\gagne\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-25]
FireFox:
========
FF DefaultProfile: l52zdr55.default
FF ProfilePath: C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\l52zdr55.default [2022-06-20]
FF ProfilePath: C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default [2023-07-26]
FF DownloadDir: D:\Download
FF Extension: (AdBlocker Ultimate) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (Popup View for Google™ Translate) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\jid0-fbHwsGfb6kJyq2hj65KnbGte3yT@jetpack.xpi [2023-01-07]
FF Extension: (Avast Passwords) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2022-06-02] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Download Manager (S3)) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\s3download@statusbar.xpi [2022-06-02]
FF Extension: (Flagfox) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2023-07-10]
FF Extension: (Nightly and Aurora) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{596ea437-a17b-4b82-a56c-23a33177512e}.xpi [2022-06-02]
FF Extension: (WX Download Status Bar) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{a1c84bb7-d5fc-4906-90b4-965e520b29bf}.xpi [2022-06-02]
StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-06-24] (BattlEye Innovations e.K. -> )
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\service.exe [652736 2023-07-26] (NZXT, Inc. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136040 2023-02-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10677504 2023-07-26] (Logitech Inc -> Logitech, Inc.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [142856 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-10-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31368 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [237424 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [392832 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297832 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95960 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39600 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [272016 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [556576 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [105248 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80416 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [943456 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [704264 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [212632 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319512 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43568 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [52568 2023-07-01] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-26] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-26] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-26] (Logitech Inc -> Logitech)
S3 tmhidusb; C:\Windows\system32\DRIVERS\tmhidusb.sys [432136 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmResetMin; C:\Windows\System32\Drivers\tmResetMin.sys [47648 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2021. All rights reserved.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz152; \??\C:\Windows\temp\cpuz152\cpuz152_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-27 16:06 - 2023-07-27 16:07 - 000023426 _____ C:\Users\gagne\Desktop\FRST.txt
2023-07-27 16:05 - 2023-07-27 16:05 - 000000000 ____D C:\Users\gagne\Desktop\FRST-OlderVersion
2023-07-26 20:45 - 2023-07-26 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-07-26 20:45 - 2023-07-26 20:45 - 000000000 ____D C:\Program Files\LGHUB
2023-07-25 21:02 - 2023-07-27 16:05 - 002384384 _____ (Farbar) C:\Users\gagne\Desktop\FRST64.exe
2023-07-25 20:20 - 2023-07-27 16:05 - 000000000 ____D C:\Program Files\CCleaner
2023-07-25 20:20 - 2023-07-26 20:49 - 000003048 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-07-25 20:20 - 2023-07-26 20:49 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-07-25 20:20 - 2023-07-26 20:49 - 000002254 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - gagne
2023-07-25 20:20 - 2023-07-26 20:49 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-07-25 20:20 - 2023-07-25 20:20 - 000000868 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-07-23 16:12 - 2023-07-23 16:12 - 000000000 ____D C:\Users\gagne\AppData\Local\fontconfig
2023-07-23 16:11 - 2023-07-26 20:49 - 000002590 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-07-23 16:11 - 2023-07-23 16:11 - 000000815 _____ C:\Users\gagne\Desktop\Format Factory.lnk
2023-07-23 16:11 - 2023-07-23 16:11 - 000000000 ____D C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2023-07-23 16:06 - 2023-07-23 16:09 - 000000000 ____D C:\aaa
2023-07-16 19:00 - 2023-07-16 19:00 - 000000000 ___HD C:\$WinREAgent
2023-07-11 16:23 - 2023-07-11 16:23 - 000000000 ____D C:\Users\gagne\AppData\Roaming\EasyAntiCheat
2023-07-11 16:22 - 2023-07-11 16:23 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-07-09 21:07 - 2023-07-09 21:07 - 000313240 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2023-07-01 20:06 - 2023-07-01 20:06 - 002081904 _____ (Logitech) C:\Windows\system32\logi_audio_hx2e_render_apo.dll
2023-07-01 20:06 - 2023-07-01 20:06 - 001893912 _____ (Logitech) C:\Windows\system32\logi_audio_headset_capture_apo.dll
2023-07-01 20:06 - 2023-07-01 20:06 - 000052568 _____ (Logitech) C:\Windows\system32\Drivers\logi_audio_surround.sys
2023-06-30 21:17 - 2023-06-30 21:19 - 000000000 ____D C:\Users\gagne\Documents\Arma 3
2023-06-30 21:17 - 2023-06-30 21:19 - 000000000 ____D C:\Users\gagne\AppData\Local\Arma 3
2023-06-30 21:17 - 2023-06-30 21:17 - 000000000 ____D C:\Users\gagne\AppData\Local\BattlEye
2023-06-30 21:17 - 2023-06-30 21:17 - 000000000 ____D C:\ProgramData\Bohemia Interactive
2023-06-30 21:16 - 2023-06-30 21:38 - 000000000 ____D C:\Users\gagne\AppData\Local\Arma 3 Launcher
2023-06-30 21:16 - 2023-06-30 21:16 - 000000000 ____D C:\Users\gagne\AppData\Local\Bohemia_Interactive
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-27 16:06 - 2022-06-20 17:32 - 000000000 ____D C:\FRST
2023-07-27 16:05 - 2023-02-18 15:16 - 000000000 ____D C:\Users\gagne\AppData\Local\Discord
2023-07-27 16:05 - 2022-06-02 17:54 - 000000000 ____D C:\Users\gagne\AppData\Local\Ubisoft Game Launcher
2023-07-27 16:05 - 2022-06-02 17:42 - 000000000 ____D C:\Users\gagne\AppData\Roaming\discord
2023-07-27 16:05 - 2022-06-02 17:00 - 000000000 ____D C:\Users\gagne\AppData\Roaming\LGHUB
2023-07-27 16:05 - 2022-06-02 16:15 - 000000000 ____D C:\Users\gagne\AppData\Roaming\NZXT CAM
2023-07-27 16:05 - 2022-06-02 16:15 - 000000000 ____D C:\Program Files\NZXT CAM
2023-07-27 16:05 - 2022-05-31 19:35 - 001693136 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-27 16:05 - 2019-12-07 16:41 - 000716764 _____ C:\Windows\system32\perfh005.dat
2023-07-27 16:05 - 2019-12-07 16:41 - 000144942 _____ C:\Windows\system32\perfc005.dat
2023-07-27 16:05 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-07-27 16:04 - 2022-11-22 21:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2023-07-27 16:04 - 2022-11-22 21:17 - 000003078 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2023-07-27 16:04 - 2022-06-02 17:00 - 000000000 ____D C:\Users\gagne\AppData\Local\LGHUB
2023-07-26 20:49 - 2022-11-22 21:17 - 000002672 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2023-07-26 20:49 - 2022-11-22 21:17 - 000002194 _____ C:\Windows\system32\Tasks\StartCN
2023-07-26 20:49 - 2022-11-22 21:17 - 000002114 _____ C:\Windows\system32\Tasks\StartDVR
2023-07-26 20:49 - 2022-05-31 19:46 - 000003066 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3082329309-1617206090-3278802057-1001
2023-07-26 20:49 - 2022-05-31 19:45 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3082329309-1617206090-3278802057-1001
2023-07-26 20:49 - 2022-05-31 19:28 - 000003568 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-26 20:49 - 2022-05-31 19:28 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-26 20:48 - 2022-06-02 15:41 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2023-07-26 20:47 - 2022-06-02 15:42 - 000000000 ____D C:\Users\gagne\AppData\Local\Avast Software
2023-07-26 20:46 - 2022-05-31 19:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-26 20:46 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-26 20:44 - 2022-06-02 15:39 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-26 20:44 - 2022-06-02 15:38 - 000000000 ____D C:\Program Files\Firefox Developer Edition
2023-07-26 20:44 - 2022-05-31 19:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-26 20:44 - 2022-05-31 19:28 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-26 20:44 - 2022-05-31 19:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-26 20:43 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-07-26 20:40 - 2022-06-02 16:09 - 000000000 ____D C:\Users\gagne\AppData\Local\AMD_Common
2023-07-25 20:22 - 2022-06-02 15:47 - 000000000 ____D C:\Users\gagne\AppData\Local\CrashDumps
2023-07-25 20:22 - 2022-05-31 20:18 - 000000000 ____D C:\Windows\Panther
2023-07-25 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-24 18:26 - 2022-05-31 19:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-24 17:56 - 2022-05-31 19:43 - 000000000 ____D C:\Users\gagne\AppData\Local\D3DSCache
2023-07-24 17:55 - 2022-05-31 19:50 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk
2023-07-23 16:44 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-23 16:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-23 16:11 - 2022-07-31 19:13 - 000000000 ____D C:\Users\gagne\AppData\Local\luminati
2023-07-23 13:34 - 2022-05-31 19:41 - 000002386 _____ C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-23 13:32 - 2022-05-31 19:28 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-17 19:59 - 2022-06-02 15:41 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2023-07-16 20:54 - 2022-05-31 19:28 - 000269344 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-16 19:13 - 2022-05-31 19:31 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-16 18:58 - 2022-06-11 17:07 - 000000000 ____D C:\Windows\system32\MRT
2023-07-13 21:32 - 2022-06-11 17:07 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-11 20:48 - 2022-06-12 10:56 - 000000000 ____D C:\Users\gagne\Documents\Euro Truck Simulator 2
2023-07-09 21:07 - 2022-06-02 15:40 - 000943456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000704264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000556576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000392832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000319512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000297832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000272016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000237424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000105248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000095960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000080416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000039600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000031368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2023-07-09 21:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-07-01 09:39 - 2022-09-28 13:09 - 000000000 ____D C:\Users\gagne\AppData\Local\BeamNG.drive
2023-06-30 21:15 - 2022-06-02 16:05 - 000000000 ____D C:\ProgramData\Package Cache
2023-06-30 21:15 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-07-2023
Ran by gagne (27-07-2023 16:07:43)
Running from C:\Users\gagne\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) (2022-05-31 17:31:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3082329309-1617206090-3278802057-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3082329309-1617206090-3278802057-503 - Limited - Disabled)
gagne (S-1-5-21-3082329309-1617206090-3278802057-1001 - Administrator - Enabled) => C:\Users\gagne
Guest (S-1-5-21-3082329309-1617206090-3278802057-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3082329309-1617206090-3278802057-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.11.1 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
Branding64 (HKLM\...\{0DB6E0DC-607A-42C1-A3CE-7567A9F85AF4}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.63.1071 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform)
CORSAIR iCUE 4 Software (HKLM\...\{444A58EF-FD29-4558-BD8B-F4839576463C}) (Version: 4.33.138 - Corsair)
C-TECH AKANTHA ULTIMATE GAMING SOFTWARE 1.2 (HKLM-x32\...\C-TECH AKANTHA ULTIMATE GAMING SOFTWARE) (Version: 1.2 - C-TECH)
C-TECH Echion Keyboard Driver v1.6.6 (HKLM-x32\...\{53162F95-A943-4865-9A58-1959B37F17FC}_is1) (Version: - C-TECH)
Dex (HKLM-x32\...\1929434313_is1) (Version: 6.0.0.0 - GOG.com)
Discord (HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 4.TTRS.2021 - Thrustmaster)
Firefox Developer Edition (x64 cs) (HKLM\...\Firefox Developer Edition 116.0 (x64 cs)) (Version: 116.0 - Mozilla)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.6.430723 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\OneDriveSetup.exe) (Version: 23.137.0702.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 102.0 - Mozilla)
NZXT CAM 4.53.2 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.53.2 - NZXT, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.50 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 132.0.10676 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C270D21B-2327-49B8-85F7-395133A93C75}) (Version: 8.92.0.0 - Microsoft Corporation)
Vojenský újezd Ralsko - Číhající Sovět (HKLM-x32\...\{Vojensky ujezd Ralsko - cihajici sovet}_is1) (Version: - Špidla Data Processing, s.r.o.)
Watch Dogs Legion (HKLM-x32\...\Uplay Install 3353) (Version: - Ubisoft)
Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.23.10015.0_x64__0a9344xs7nr4m [2023-07-11] (Advanced Micro Devices Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.2.0_x64__6rarf9sa4v8jt [2023-07-20] (Disney)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2023-01-24] (Netflix, Inc.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-05-18] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3082329309-1617206090-3278802057-1001_Classes\CLSID\{C07FF71D-2B2E-424A-8097-56797DFE0911}\InprocServer32 -> C:\Program Files\Firefox Developer Edition\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [2231296 2013-04-05] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-05] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition Private Browsing.lnk -> C:\Program Files\Firefox Developer Edition\private_browsing.exe (Mozilla Corporation)
Shortcut: C:\Users\gagne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Firefox Developer.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2023-07-27 16:05 - 2023-07-26 23:06 - 001569280 _____ () [File not signed] \\?\C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\CTITSDKDeviceTool.dll
2023-02-02 13:07 - 2023-05-29 14:29 - 004519936 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\vk_swiftshader.dll
2023-07-26 20:45 - 2023-07-26 20:43 - 000164864 _____ () [File not signed] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2023-07-27 16:05 - 2023-07-26 23:06 - 002882560 _____ () [File not signed] C:\Program Files\NZXT CAM\ffmpeg.dll
2023-07-27 16:05 - 2023-07-26 23:06 - 000480768 _____ () [File not signed] C:\Program Files\NZXT CAM\libegl.dll
2023-07-27 16:05 - 2023-07-26 23:06 - 007625728 _____ () [File not signed] C:\Program Files\NZXT CAM\libglesv2.dll
2022-07-19 15:34 - 2023-07-26 23:06 - 005334528 _____ () [File not signed] C:\Program Files\NZXT CAM\vk_swiftshader.dll
2023-07-27 16:05 - 2023-07-26 23:06 - 000083456 _____ (Silicon Laboratories, Inc.) [File not signed] \\?\C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\nzxt-device\SiUSBXp64.dll
2023-01-17 13:13 - 2023-01-17 13:13 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8863C9D1-0151-4FDE-BD0A-A6A72AEC64F3}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC64AB36-248C-4314-B0D5-2CAC7A709798}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F17FBCDE-27E6-4F36-9704-51FBD8DBCB06}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E034FF70-CAF1-4625-BDB5-65F1019F408B}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{BFDB94EB-B160-46C3-91E8-3C6199A7F04A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{0D4DFE67-3144-4AA2-9F7C-7BF9929075BE}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{9DC65D9F-6AC7-4369-8E35-27C623F40112}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5C0A2AF5-AA6D-4D53-974F-6657F7F01D06}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{C2F51D2D-AB24-4EE5-96DE-35A8131A2B47}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F7286CA6-4DF9-46DD-A8D4-A15FB9B7FC64}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4F486775-BFC2-48E1-ADF6-095A2976C6D9}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B1818985-F1EA-4627-A75D-905D2095664F}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E04790C-3B46-4717-B332-F79B34735E5B}] => (Allow) D:\Games\Tom Clancy's The Division 2\TheDivision2.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{CC9EF5A4-4F96-4521-B048-75C299AF23C0}D:\games\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\games\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [UDP Query User{5961DFAE-D83F-401B-A744-C2C7C42A0D87}D:\games\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\games\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [{03064010-8275-464E-AF42-ECACD4908E4A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{587E53B9-2E54-48EF-9899-EFAFA2B1CBB3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{056FFE47-D77D-4A7F-90BE-A581967391AE}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{05B27EFB-C77B-4300-85E5-FC682DC02496}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{88681583-831A-414E-B095-E0716BFA940F}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B547D1F7-61CE-4B14-ACE9-12500C78CCB1}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{CF36ADCA-8C83-4CB3-BD4E-7D257773ECB3}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{154E1218-163D-4279-AD50-5654892F96BF}] => (Allow) D:\Games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{E8AD08E9-A814-49DE-9E12-22CFD6E1D3C5}] => (Allow) D:\Games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{2CDD9E2E-F40E-4454-BF8E-1205994305F9}] => (Allow) D:\Games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{8ACEA2D3-569F-4F93-A075-97CC7A765C04}] => (Allow) D:\Games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{4984FFE9-E7FE-4AA8-A9F4-03F75D76AC50}] => (Allow) D:\Games\Tom Clancy's Ghost Recon Wildlands\GRW_Upp.exe (Blue Byte GmbH -> )
FirewallRules: [TCP Query User{C88433C9-CC91-4A54-8E28-72C643BC1AE3}D:\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\games\tom clancy's ghost recon wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [UDP Query User{FF78796E-99E5-4FEB-85E0-4C2D88C20C8D}D:\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\games\tom clancy's ghost recon wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [{EF7C3361-72D9-484B-8733-D3E03BA8C5FD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{CC2B1F72-DC93-4607-BD0C-4D3DA1C2D59D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9EEDB6FF-EE2F-41F4-ACD9-76778259DD63}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0F87DD28-DE15-4D99-9FA6-8D0718B6139B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9B979DB8-C5FA-4F3B-B37A-9A6587C26D96}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{BB5B9461-F3CC-4CBA-B458-F219C9D88FC9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{C5D39622-53CA-4CD4-8045-A87D444318B1}] => (Allow) D:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{21FB6EFF-4E9E-4B37-A1B5-0FEB8CA5FE77}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{83258977-8954-470A-ADA5-B3181F657371}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.183\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
30-06-2023 15:05:56 Naplánovaný kontrolní bod
10-07-2023 20:04:04 Instalační služba modulů systému Windows
16-07-2023 18:58:45 Instalační služba modulů systému Windows
16-07-2023 19:00:05 Instalační služba modulů systému Windows
16-07-2023 19:01:12 Instalační služba modulů systému Windows
17-07-2023 20:04:21 Instalační služba modulů systému Windows
17-07-2023 20:05:05 Instalační služba modulů systému Windows
26-07-2023 20:42:48 AdwCleaner_BeforeCleaning_26/07/2023_20:42:48
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/26/2023 08:41:59 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/25/2023 08:29:46 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/24/2023 08:29:47 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/24/2023 05:56:59 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
System errors:
=============
Error: (07/26/2023 08:49:54 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CAM Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba iCUE device plugin host service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Corsair Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Thrustmaster® Device Driver Installer byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba LGHUB Updater Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Corsair Gaming Audio Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===============
Date: 2023-07-27 16:04:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-07-26 20:48:24
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0701 05/16/2016
Motherboard: ASUSTeK COMPUTER INC. 970 PRO GAMING/AURA
Processor: AMD FX(tm)-8350 Eight-Core Processor
Percentage of memory in use: 37%
Total physical RAM: 16280.84 MB
Available physical RAM: 10137.88 MB
Total Virtual: 27544.84 MB
Available Virtual: 16747.86 MB
==================== Drives ================================
Drive c: (WIN10) (Fixed) (Total:222.96 GB) (Free:124.53 GB) (Model: SanDisk SDSSDA240G) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:438.98 GB) (Model: WDC WD10EZEX-08WN4A0) NTFS
\\?\Volume{418e9b3a-17e0-4cd2-b95b-28d9bfd09665}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{bddb1690-dbed-42b0-b569-4f6a03c59a8e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 61C67A30)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1805298C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by gagne (administrator) on DESKTOP-UBE4TC9 (27-07-2023 16:06:15)
Running from C:\Users\gagne\Desktop\FRST64.exe
Loaded Profiles: gagne
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\Firefox Developer Edition\firefox.exe" -osint -url "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <6>
(C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe ->) (Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\QmlRenderer.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NZXT CAM\NZXT CAM.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\cam_helper.exe <4>
(C:\Program Files\NZXT CAM\NZXT CAM.exe ->) (Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(D:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(Discord Inc. -> Discord Inc.) C:\Users\gagne\AppData\Local\Discord\app-1.0.9015\Discord.exe <6>
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (NZXT, Inc. -> NZXT, Inc.) C:\Program Files\NZXT CAM\NZXT CAM.exe <5>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\gagne\AppData\Local\Microsoft\OneDrive\23.137.0702.0001\Microsoft.SharePoint.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3205_none_7e1f4da67c811930\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [162104256 2023-07-26] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-07-26] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37050832 2023-07-25] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe [520000 2023-07-09] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4371816 2023-07-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [AMDNoiseSuppression] => "C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [Discord] => C:\Users\gagne\AppData\Local\Discord\Update.exe [1525016 2023-02-13] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D2B4700D-E6EE-4B4F-BC2B-F97FCEAEAB60} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CFEEF753-09EB-4192-AA25-69E2B631D501} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {1DC036C8-7173-451B-AB04-DEFBAB365BE8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
Task: {EB530F2F-D429-4C75-AB24-616F273BA2D3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-13] (Avast Software s.r.o. -> Avast Software)
Task: {817EF998-4535-4921-97DC-55608BD256BC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FB9CEC40-2086-431D-9511-D96DA86302C5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0d0485cf-cbed-42f1-b993-f3e9878c0cc7" --version "6.14.10584" --silent
Task: {64215221-0A89-4CF2-955D-F0BFA8968C2F} - System32\Tasks\CCleanerSkipUAC - gagne => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E3FD7DFE-6AC9-48DD-BDB2-8E8FA15C25F8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5308592 2023-07-16] (Microsoft Windows -> Microsoft Corporation)
Task: {5D28E0CD-85E6-48FB-8A7B-D90F1A2B914D} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D9A5C3FF-D4E6-423E-BDD9-972197B094DB} - System32\Tasks\Mozilla\Firefox Developer Edition Background Update CA9422711AE1A81C => C:\Program Files\Firefox Developer Edition\firefox.exe [704928 2023-07-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\CA9422711AE1A81C\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {BD0CB606-274B-46E1-B750-908C53098C6A} - System32\Tasks\Mozilla\Firefox Developer Edition Default Browser Agent CA9422711AE1A81C => C:\Program Files\Firefox Developer Edition\default-browser-agent.exe [733088 2023-07-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {0DEA5F2F-D73F-4813-9415-DE6D3364D1E8} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56760 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {82C1AA6E-84A4-4F8A-85CC-EC3EC7E23380} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{276f1795-e4a3-4eee-90b9-c5e05325830f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3654d435-6864-4a67-9ad2-4e818661a19a}: [DhcpNameServer] 192.168.39.115
Edge:
=======
Edge Profile: C:\Users\gagne\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-25]
FireFox:
========
FF DefaultProfile: l52zdr55.default
FF ProfilePath: C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\l52zdr55.default [2022-06-20]
FF ProfilePath: C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default [2023-07-26]
FF DownloadDir: D:\Download
FF Extension: (AdBlocker Ultimate) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (Popup View for Google™ Translate) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\jid0-fbHwsGfb6kJyq2hj65KnbGte3yT@jetpack.xpi [2023-01-07]
FF Extension: (Avast Passwords) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2022-06-02] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Download Manager (S3)) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\s3download@statusbar.xpi [2022-06-02]
FF Extension: (Flagfox) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2023-07-10]
FF Extension: (Nightly and Aurora) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{596ea437-a17b-4b82-a56c-23a33177512e}.xpi [2022-06-02]
FF Extension: (WX Download Status Bar) - C:\Users\gagne\AppData\Roaming\Mozilla\Firefox\Profiles\9vr3974f.dev-edition-default\Extensions\{a1c84bb7-d5fc-4906-90b4-965e520b29bf}.xpi [2022-06-02]
StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-09] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-06-24] (BattlEye Innovations e.K. -> )
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\target\x86_64-pc-windows-msvc\release\service.exe [652736 2023-07-26] (NZXT, Inc. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136040 2023-02-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10677504 2023-07-26] (Logitech Inc -> Logitech, Inc.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [142856 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-10-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31368 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [237424 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [392832 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297832 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95960 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39600 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [272016 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [556576 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [105248 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80416 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [943456 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [704264 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [212632 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319512 2023-07-09] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43568 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [52568 2023-07-01] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-26] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-26] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-26] (Logitech Inc -> Logitech)
S3 tmhidusb; C:\Windows\system32\DRIVERS\tmhidusb.sys [432136 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmResetMin; C:\Windows\System32\Drivers\tmResetMin.sys [47648 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2021. All rights reserved.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz152; \??\C:\Windows\temp\cpuz152\cpuz152_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-27 16:06 - 2023-07-27 16:07 - 000023426 _____ C:\Users\gagne\Desktop\FRST.txt
2023-07-27 16:05 - 2023-07-27 16:05 - 000000000 ____D C:\Users\gagne\Desktop\FRST-OlderVersion
2023-07-26 20:45 - 2023-07-26 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-07-26 20:45 - 2023-07-26 20:45 - 000000000 ____D C:\Program Files\LGHUB
2023-07-25 21:02 - 2023-07-27 16:05 - 002384384 _____ (Farbar) C:\Users\gagne\Desktop\FRST64.exe
2023-07-25 20:20 - 2023-07-27 16:05 - 000000000 ____D C:\Program Files\CCleaner
2023-07-25 20:20 - 2023-07-26 20:49 - 000003048 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-07-25 20:20 - 2023-07-26 20:49 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-07-25 20:20 - 2023-07-26 20:49 - 000002254 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - gagne
2023-07-25 20:20 - 2023-07-26 20:49 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-07-25 20:20 - 2023-07-25 20:20 - 000000868 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-07-23 16:12 - 2023-07-23 16:12 - 000000000 ____D C:\Users\gagne\AppData\Local\fontconfig
2023-07-23 16:11 - 2023-07-26 20:49 - 000002590 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-07-23 16:11 - 2023-07-23 16:11 - 000000815 _____ C:\Users\gagne\Desktop\Format Factory.lnk
2023-07-23 16:11 - 2023-07-23 16:11 - 000000000 ____D C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2023-07-23 16:06 - 2023-07-23 16:09 - 000000000 ____D C:\aaa
2023-07-16 19:00 - 2023-07-16 19:00 - 000000000 ___HD C:\$WinREAgent
2023-07-11 16:23 - 2023-07-11 16:23 - 000000000 ____D C:\Users\gagne\AppData\Roaming\EasyAntiCheat
2023-07-11 16:22 - 2023-07-11 16:23 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-07-09 21:07 - 2023-07-09 21:07 - 000313240 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2023-07-01 20:06 - 2023-07-01 20:06 - 002081904 _____ (Logitech) C:\Windows\system32\logi_audio_hx2e_render_apo.dll
2023-07-01 20:06 - 2023-07-01 20:06 - 001893912 _____ (Logitech) C:\Windows\system32\logi_audio_headset_capture_apo.dll
2023-07-01 20:06 - 2023-07-01 20:06 - 000052568 _____ (Logitech) C:\Windows\system32\Drivers\logi_audio_surround.sys
2023-06-30 21:17 - 2023-06-30 21:19 - 000000000 ____D C:\Users\gagne\Documents\Arma 3
2023-06-30 21:17 - 2023-06-30 21:19 - 000000000 ____D C:\Users\gagne\AppData\Local\Arma 3
2023-06-30 21:17 - 2023-06-30 21:17 - 000000000 ____D C:\Users\gagne\AppData\Local\BattlEye
2023-06-30 21:17 - 2023-06-30 21:17 - 000000000 ____D C:\ProgramData\Bohemia Interactive
2023-06-30 21:16 - 2023-06-30 21:38 - 000000000 ____D C:\Users\gagne\AppData\Local\Arma 3 Launcher
2023-06-30 21:16 - 2023-06-30 21:16 - 000000000 ____D C:\Users\gagne\AppData\Local\Bohemia_Interactive
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-27 16:06 - 2022-06-20 17:32 - 000000000 ____D C:\FRST
2023-07-27 16:05 - 2023-02-18 15:16 - 000000000 ____D C:\Users\gagne\AppData\Local\Discord
2023-07-27 16:05 - 2022-06-02 17:54 - 000000000 ____D C:\Users\gagne\AppData\Local\Ubisoft Game Launcher
2023-07-27 16:05 - 2022-06-02 17:42 - 000000000 ____D C:\Users\gagne\AppData\Roaming\discord
2023-07-27 16:05 - 2022-06-02 17:00 - 000000000 ____D C:\Users\gagne\AppData\Roaming\LGHUB
2023-07-27 16:05 - 2022-06-02 16:15 - 000000000 ____D C:\Users\gagne\AppData\Roaming\NZXT CAM
2023-07-27 16:05 - 2022-06-02 16:15 - 000000000 ____D C:\Program Files\NZXT CAM
2023-07-27 16:05 - 2022-05-31 19:35 - 001693136 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-27 16:05 - 2019-12-07 16:41 - 000716764 _____ C:\Windows\system32\perfh005.dat
2023-07-27 16:05 - 2019-12-07 16:41 - 000144942 _____ C:\Windows\system32\perfc005.dat
2023-07-27 16:05 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-07-27 16:04 - 2022-11-22 21:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2023-07-27 16:04 - 2022-11-22 21:17 - 000003078 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2023-07-27 16:04 - 2022-06-02 17:00 - 000000000 ____D C:\Users\gagne\AppData\Local\LGHUB
2023-07-26 20:49 - 2022-11-22 21:17 - 000002672 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2023-07-26 20:49 - 2022-11-22 21:17 - 000002194 _____ C:\Windows\system32\Tasks\StartCN
2023-07-26 20:49 - 2022-11-22 21:17 - 000002114 _____ C:\Windows\system32\Tasks\StartDVR
2023-07-26 20:49 - 2022-05-31 19:46 - 000003066 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3082329309-1617206090-3278802057-1001
2023-07-26 20:49 - 2022-05-31 19:45 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3082329309-1617206090-3278802057-1001
2023-07-26 20:49 - 2022-05-31 19:28 - 000003568 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-26 20:49 - 2022-05-31 19:28 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-26 20:48 - 2022-06-02 15:41 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2023-07-26 20:47 - 2022-06-02 15:42 - 000000000 ____D C:\Users\gagne\AppData\Local\Avast Software
2023-07-26 20:46 - 2022-05-31 19:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-26 20:46 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-26 20:44 - 2022-06-02 15:39 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-26 20:44 - 2022-06-02 15:38 - 000000000 ____D C:\Program Files\Firefox Developer Edition
2023-07-26 20:44 - 2022-05-31 19:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-26 20:44 - 2022-05-31 19:28 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-26 20:44 - 2022-05-31 19:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-26 20:43 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-07-26 20:40 - 2022-06-02 16:09 - 000000000 ____D C:\Users\gagne\AppData\Local\AMD_Common
2023-07-25 20:22 - 2022-06-02 15:47 - 000000000 ____D C:\Users\gagne\AppData\Local\CrashDumps
2023-07-25 20:22 - 2022-05-31 20:18 - 000000000 ____D C:\Windows\Panther
2023-07-25 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-24 18:26 - 2022-05-31 19:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-24 17:56 - 2022-05-31 19:43 - 000000000 ____D C:\Users\gagne\AppData\Local\D3DSCache
2023-07-24 17:55 - 2022-05-31 19:50 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk
2023-07-23 16:44 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-23 16:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-23 16:11 - 2022-07-31 19:13 - 000000000 ____D C:\Users\gagne\AppData\Local\luminati
2023-07-23 13:34 - 2022-05-31 19:41 - 000002386 _____ C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-23 13:32 - 2022-05-31 19:28 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-17 19:59 - 2022-06-02 15:41 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2023-07-16 20:54 - 2022-05-31 19:28 - 000269344 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-16 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-16 19:13 - 2022-05-31 19:31 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-16 18:58 - 2022-06-11 17:07 - 000000000 ____D C:\Windows\system32\MRT
2023-07-13 21:32 - 2022-06-11 17:07 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-11 20:48 - 2022-06-12 10:56 - 000000000 ____D C:\Users\gagne\Documents\Euro Truck Simulator 2
2023-07-09 21:07 - 2022-06-02 15:40 - 000943456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000704264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000556576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000392832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000319512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000297832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000272016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000237424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000105248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000095960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000080416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000039600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2023-07-09 21:07 - 2022-06-02 15:40 - 000031368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2023-07-09 21:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-07-01 09:39 - 2022-09-28 13:09 - 000000000 ____D C:\Users\gagne\AppData\Local\BeamNG.drive
2023-06-30 21:15 - 2022-06-02 16:05 - 000000000 ____D C:\ProgramData\Package Cache
2023-06-30 21:15 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-07-2023
Ran by gagne (27-07-2023 16:07:43)
Running from C:\Users\gagne\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) (2022-05-31 17:31:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3082329309-1617206090-3278802057-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3082329309-1617206090-3278802057-503 - Limited - Disabled)
gagne (S-1-5-21-3082329309-1617206090-3278802057-1001 - Administrator - Enabled) => C:\Users\gagne
Guest (S-1-5-21-3082329309-1617206090-3278802057-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3082329309-1617206090-3278802057-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.11.1 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
Branding64 (HKLM\...\{0DB6E0DC-607A-42C1-A3CE-7567A9F85AF4}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.63.1071 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform)
CORSAIR iCUE 4 Software (HKLM\...\{444A58EF-FD29-4558-BD8B-F4839576463C}) (Version: 4.33.138 - Corsair)
C-TECH AKANTHA ULTIMATE GAMING SOFTWARE 1.2 (HKLM-x32\...\C-TECH AKANTHA ULTIMATE GAMING SOFTWARE) (Version: 1.2 - C-TECH)
C-TECH Echion Keyboard Driver v1.6.6 (HKLM-x32\...\{53162F95-A943-4865-9A58-1959B37F17FC}_is1) (Version: - C-TECH)
Dex (HKLM-x32\...\1929434313_is1) (Version: 6.0.0.0 - GOG.com)
Discord (HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 4.TTRS.2021 - Thrustmaster)
Firefox Developer Edition (x64 cs) (HKLM\...\Firefox Developer Edition 116.0 (x64 cs)) (Version: 116.0 - Mozilla)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.6.430723 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\...\OneDriveSetup.exe) (Version: 23.137.0702.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 102.0 - Mozilla)
NZXT CAM 4.53.2 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.53.2 - NZXT, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.50 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 132.0.10676 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C270D21B-2327-49B8-85F7-395133A93C75}) (Version: 8.92.0.0 - Microsoft Corporation)
Vojenský újezd Ralsko - Číhající Sovět (HKLM-x32\...\{Vojensky ujezd Ralsko - cihajici sovet}_is1) (Version: - Špidla Data Processing, s.r.o.)
Watch Dogs Legion (HKLM-x32\...\Uplay Install 3353) (Version: - Ubisoft)
Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.23.10015.0_x64__0a9344xs7nr4m [2023-07-11] (Advanced Micro Devices Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.2.0_x64__6rarf9sa4v8jt [2023-07-20] (Disney)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2023-01-24] (Netflix, Inc.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-05-18] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3082329309-1617206090-3278802057-1001_Classes\CLSID\{C07FF71D-2B2E-424A-8097-56797DFE0911}\InprocServer32 -> C:\Program Files\Firefox Developer Edition\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2022-11-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-09] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [2231296 2013-04-05] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-05] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\gagne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition Private Browsing.lnk -> C:\Program Files\Firefox Developer Edition\private_browsing.exe (Mozilla Corporation)
Shortcut: C:\Users\gagne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Firefox Developer.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2023-07-27 16:05 - 2023-07-26 23:06 - 001569280 _____ () [File not signed] \\?\C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\CTITSDKDeviceTool.dll
2023-02-02 13:07 - 2023-05-29 14:29 - 004519936 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\vk_swiftshader.dll
2023-07-26 20:45 - 2023-07-26 20:43 - 000164864 _____ () [File not signed] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2023-07-27 16:05 - 2023-07-26 23:06 - 002882560 _____ () [File not signed] C:\Program Files\NZXT CAM\ffmpeg.dll
2023-07-27 16:05 - 2023-07-26 23:06 - 000480768 _____ () [File not signed] C:\Program Files\NZXT CAM\libegl.dll
2023-07-27 16:05 - 2023-07-26 23:06 - 007625728 _____ () [File not signed] C:\Program Files\NZXT CAM\libglesv2.dll
2022-07-19 15:34 - 2023-07-26 23:06 - 005334528 _____ () [File not signed] C:\Program Files\NZXT CAM\vk_swiftshader.dll
2023-07-27 16:05 - 2023-07-26 23:06 - 000083456 _____ (Silicon Laboratories, Inc.) [File not signed] \\?\C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\cam-core\dist\nzxt-device\SiUSBXp64.dll
2023-01-17 13:13 - 2023-01-17 13:13 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3082329309-1617206090-3278802057-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8863C9D1-0151-4FDE-BD0A-A6A72AEC64F3}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC64AB36-248C-4314-B0D5-2CAC7A709798}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F17FBCDE-27E6-4F36-9704-51FBD8DBCB06}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E034FF70-CAF1-4625-BDB5-65F1019F408B}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{BFDB94EB-B160-46C3-91E8-3C6199A7F04A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{0D4DFE67-3144-4AA2-9F7C-7BF9929075BE}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{9DC65D9F-6AC7-4369-8E35-27C623F40112}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5C0A2AF5-AA6D-4D53-974F-6657F7F01D06}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{C2F51D2D-AB24-4EE5-96DE-35A8131A2B47}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F7286CA6-4DF9-46DD-A8D4-A15FB9B7FC64}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4F486775-BFC2-48E1-ADF6-095A2976C6D9}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B1818985-F1EA-4627-A75D-905D2095664F}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E04790C-3B46-4717-B332-F79B34735E5B}] => (Allow) D:\Games\Tom Clancy's The Division 2\TheDivision2.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{CC9EF5A4-4F96-4521-B048-75C299AF23C0}D:\games\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\games\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [UDP Query User{5961DFAE-D83F-401B-A744-C2C7C42A0D87}D:\games\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\games\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [{03064010-8275-464E-AF42-ECACD4908E4A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{587E53B9-2E54-48EF-9899-EFAFA2B1CBB3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{056FFE47-D77D-4A7F-90BE-A581967391AE}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{05B27EFB-C77B-4300-85E5-FC682DC02496}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{88681583-831A-414E-B095-E0716BFA940F}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B547D1F7-61CE-4B14-ACE9-12500C78CCB1}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{CF36ADCA-8C83-4CB3-BD4E-7D257773ECB3}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{154E1218-163D-4279-AD50-5654892F96BF}] => (Allow) D:\Games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{E8AD08E9-A814-49DE-9E12-22CFD6E1D3C5}] => (Allow) D:\Games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{2CDD9E2E-F40E-4454-BF8E-1205994305F9}] => (Allow) D:\Games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{8ACEA2D3-569F-4F93-A075-97CC7A765C04}] => (Allow) D:\Games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{4984FFE9-E7FE-4AA8-A9F4-03F75D76AC50}] => (Allow) D:\Games\Tom Clancy's Ghost Recon Wildlands\GRW_Upp.exe (Blue Byte GmbH -> )
FirewallRules: [TCP Query User{C88433C9-CC91-4A54-8E28-72C643BC1AE3}D:\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\games\tom clancy's ghost recon wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [UDP Query User{FF78796E-99E5-4FEB-85E0-4C2D88C20C8D}D:\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\games\tom clancy's ghost recon wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [{EF7C3361-72D9-484B-8733-D3E03BA8C5FD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{CC2B1F72-DC93-4607-BD0C-4D3DA1C2D59D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9EEDB6FF-EE2F-41F4-ACD9-76778259DD63}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0F87DD28-DE15-4D99-9FA6-8D0718B6139B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9B979DB8-C5FA-4F3B-B37A-9A6587C26D96}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{BB5B9461-F3CC-4CBA-B458-F219C9D88FC9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{C5D39622-53CA-4CD4-8045-A87D444318B1}] => (Allow) D:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{21FB6EFF-4E9E-4B37-A1B5-0FEB8CA5FE77}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{83258977-8954-470A-ADA5-B3181F657371}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.183\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
30-06-2023 15:05:56 Naplánovaný kontrolní bod
10-07-2023 20:04:04 Instalační služba modulů systému Windows
16-07-2023 18:58:45 Instalační služba modulů systému Windows
16-07-2023 19:00:05 Instalační služba modulů systému Windows
16-07-2023 19:01:12 Instalační služba modulů systému Windows
17-07-2023 20:04:21 Instalační služba modulů systému Windows
17-07-2023 20:05:05 Instalační služba modulů systému Windows
26-07-2023 20:42:48 AdwCleaner_BeforeCleaning_26/07/2023_20:42:48
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/26/2023 08:43:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/26/2023 08:41:59 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/25/2023 08:29:46 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/24/2023 08:29:47 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/24/2023 05:56:59 PM) (Source: Firefox Developer Edition Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
System errors:
=============
Error: (07/26/2023 08:49:54 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UBE4TC9)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CAM Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba iCUE device plugin host service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Corsair Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Thrustmaster® Device Driver Installer byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba LGHUB Updater Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (07/26/2023 08:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Corsair Gaming Audio Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===============
Date: 2023-07-27 16:04:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-07-26 20:48:24
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0701 05/16/2016
Motherboard: ASUSTeK COMPUTER INC. 970 PRO GAMING/AURA
Processor: AMD FX(tm)-8350 Eight-Core Processor
Percentage of memory in use: 37%
Total physical RAM: 16280.84 MB
Available physical RAM: 10137.88 MB
Total Virtual: 27544.84 MB
Available Virtual: 16747.86 MB
==================== Drives ================================
Drive c: (WIN10) (Fixed) (Total:222.96 GB) (Free:124.53 GB) (Model: SanDisk SDSSDA240G) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:438.98 GB) (Model: WDC WD10EZEX-08WN4A0) NTFS
\\?\Volume{418e9b3a-17e0-4cd2-b95b-28d9bfd09665}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{bddb1690-dbed-42b0-b569-4f6a03c59a8e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 61C67A30)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1805298C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Ukonceni fullscreenu spusti pruzkumnika
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
FirewallRules: [TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Ukonceni fullscreenu spusti pruzkumnika
Fix result of Farbar Recovery Scan Tool (x64) Version: 27-07-2023
Ran by gagne (27-07-2023 19:03:02) Run:2
Running from C:\Users\gagne\Desktop
Loaded Profiles: gagne
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
FirewallRules: [TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10586245 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1267863818 B
Windows/system/drivers => 33962709 B
Edge => 0 B
Firefox => 148686736 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
gagne => 4827434 B
RecycleBin => 61762 B
EmptyTemp: => 1.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:03:26 ====
Ran by gagne (27-07-2023 19:03:02) Run:2
Running from C:\Users\gagne\Desktop
Loaded Profiles: gagne
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
FirewallRules: [TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D96E4FDB-667E-42E0-9227-004459B930B6}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FC8CC4CB-E293-4666-B9DA-C3CEEA9C5C5F}C:\users\gagne\appdata\local\discord\app-1.0.9005\discord.exe" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10586245 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1267863818 B
Windows/system/drivers => 33962709 B
Edge => 0 B
Firefox => 148686736 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
gagne => 4827434 B
RecycleBin => 61762 B
EmptyTemp: => 1.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:03:26 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Ukonceni fullscreenu spusti pruzkumnika
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Ukonceni fullscreenu spusti pruzkumnika
Jop, uz to nic nespusti.
Moc dekuju a co tam bylo?
Moc dekuju a co tam bylo?
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Ukonceni fullscreenu spusti pruzkumnika
Problém byl pravděpodobně toto: C:\Users\gagne\AppData\Roaming\quickclick . Byl smazán utilitou ADW. FRST pak dočistil jen zbytečnosti. Nemáie zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?